fluentd (RubyGems) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the RubyGems package fluentd, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (3)
CVE-2017-10906 — CVSS 9.8 (critical): Escape sequence injection vulnerability in Fluentd versions 0.12.29 through 0.12.40 may allow an attacker to change the terminal UI or…
CVE-2021-41186 — CVSS 5.9 (medium): Fluentd collects events from various data sources and writes them to files to help unify logging infrastructure. The parser_apache2 plugin…
CVE-2022-39379 — CVSS 3.1 (low): Fluentd collects events from various data sources and writes them to files, RDBMS, NoSQL, IaaS, SaaS, Hadoop and so on. A remote code…